Commit 8c0ca9e6 authored by Pierre Smeyers's avatar Pierre Smeyers
Browse files

Merge branch 'doc-trivyignore' into 'master' 

doc: introduce .trivyignore file

See merge request to-be-continuous/docker!157
parents d2309f32 6daf0602

README.md

+2 −0
Original line number Diff line number Diff line
@@ -466,6 +466,8 @@ Examples: 
* `TRIVY_DB_REPOSITORY`: OCI repository to retrieve Trivy Database from

* `TRIVY_JAVA_DB_REPOSITORY`: OCI repository to retrieve Trivy Java Database from



It's possible to ignore some CVE by adding a `.trivyignore` file at the root of the project (see [official documentation](https://trivy.dev/latest/docs/configuration/filtering/#trivyignore) for syntax).



In addition to a textual report in the console, this job produces the following reports, kept for one day and only available for download by users with the Developer role or higher:



| Report                               | Format                                                                                                             | Usage                                                                                                                                                                       |